Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/64F1FFFAC62911EFB792CBA8762E951A.roa
File: 64F1FFFAC62911EFB792CBA8762E951A.roa (raw, json)
Hash identifier: cgUYYqtm+c/3acg5TdXuncbHL1cSFG9NRrwHStZwJhU=
Subject key identifier: E3:6B:BA:95:8A:78:27:6E:6A:10:B9:AF:E9:D9:9F:65:CE:25:33:55
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012FB2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/64F1FFFAC62911EFB792CBA8762E951A.roa
Signing time: Sun 29 Dec 2024 21:10:56 +0000
ROA not before: Sun 29 Dec 2024 21:10:53 +0000
ROA not after: Sun 12 Dec 2027 21:10:53 +0000
asID: 17561
IP address blocks: 154.217.188.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77746 (0x12fb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 21:10:53 2024 GMT
Not After : Dec 12 21:10:53 2027 GMT
Subject: CN=6771bae0-ba1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:3d:0c:9f:a5:ff:96:e5:e9:12:ca:dc:07:6a:
13:1c:eb:77:14:49:f8:88:9c:82:5e:6f:8a:b2:f0:
d3:6b:74:3a:16:99:c0:fe:d7:49:2f:32:92:bc:97:
24:3b:60:c4:1e:d7:eb:77:69:4f:06:ee:90:5e:fb:
40:a3:71:0e:3c:ad:95:ce:76:a0:29:44:58:04:bb:
38:5b:30:31:71:17:31:9c:3e:36:35:2e:ad:34:86:
2c:d9:0f:93:64:8e:42:ab:6c:8e:f7:00:b7:d7:bd:
e0:52:be:14:d4:92:dd:75:38:fa:ae:30:a3:e1:dd:
30:30:b2:8f:3d:91:f4:03:9c:0d:dd:5d:49:87:75:
5b:a5:de:a5:8e:ce:ae:d8:b1:4d:2c:0b:b3:a4:e9:
39:42:54:f7:7f:f6:4b:c5:61:5b:ce:6f:21:fa:70:
66:25:70:92:95:8f:01:5f:be:9b:7b:7c:0f:64:15:
51:c1:8a:6b:cf:21:eb:94:7e:e9:d3:59:ad:3c:ca:
d8:0b:1b:f3:20:96:bf:8b:31:61:84:b1:5f:38:3f:
5c:f8:47:33:94:07:23:39:11:b4:39:2f:ea:7b:88:
c8:26:83:2a:c1:5e:8e:62:9a:11:19:0e:06:70:16:
85:f8:d0:11:80:8a:25:bf:b2:24:53:d7:ff:38:6d:
24:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:6B:BA:95:8A:78:27:6E:6A:10:B9:AF:E9:D9:9F:65:CE:25:33:55
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/64F1FFFAC62911EFB792CBA8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.188.0/24
Signature Algorithm: sha256WithRSAEncryption
41:55:09:6c:47:8e:c2:ad:31:9d:09:50:a8:79:7b:b2:bc:c6:
6a:21:a3:4c:af:40:54:94:fb:22:34:47:6a:73:03:e7:7d:03:
aa:af:d7:f0:5b:fe:6d:03:bc:c9:44:a9:70:ad:2e:c8:35:dc:
42:a5:ab:c0:e1:58:85:4f:77:98:90:6a:42:65:b0:f2:a1:5b:
37:c9:25:0e:45:c0:57:bd:a4:96:29:66:38:b4:5c:c1:e0:b1:
d6:5c:cb:e1:df:5d:38:80:be:d3:1e:06:c9:db:aa:89:6c:b2:
e3:8d:7c:1d:68:75:1a:7e:bc:58:f8:f9:20:18:72:3b:1a:71:
6a:62:2b:fa:e4:e4:df:d1:41:42:88:20:60:d3:5f:cf:c5:5d:
b6:bd:87:38:97:59:2b:c0:c4:e5:e4:c5:26:0f:27:a2:4d:57:
2f:d6:ae:66:b6:3f:95:ff:75:ce:8e:b7:5c:f9:cd:01:72:d6:
e2:66:53:67:35:c6:65:99:8d:ec:30:b0:35:61:76:f1:fe:bb:
e6:f5:77:0d:5a:35:2a:1b:9b:e0:e3:e4:ae:a8:1a:35:46:c9:
0d:e3:e8:20:c6:eb:f2:64:29:a9:43:af:49:2d:18:4c:ca:ef:
70:34:9a:36:fd:cf:74:d4:d3:92:7c:1e:88:aa:28:1f:b6:07:
0b:41:23:fb
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAS+yMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI5MjExMDUzWhcNMjcxMjEyMjExMDUzWjAYMRYw
FAYDVQQDEw02NzcxYmFlMC1iYTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1z0Mn6X/luXpEsrcB2oTHOt3FEn4iJyCXm+KsvDTa3Q6FpnA/tdJLzKS
vJckO2DEHtfrd2lPBu6QXvtAo3EOPK2VznagKURYBLs4WzAxcRcxnD42NS6tNIYs
2Q+TZI5Cq2yO9wC3173gUr4U1JLddTj6rjCj4d0wMLKPPZH0A5wN3V1Jh3Vbpd6l
js6u2LFNLAuzpOk5QlT3f/ZLxWFbzm8h+nBmJXCSlY8BX76be3wPZBVRwYprzyHr
lH7p01mtPMrYCxvzIJa/izFhhLFfOD9c+EczlAcjORG0OS/qe4jIJoMqwV6OYpoR
GQ4GcBaF+NARgIolv7IkU9f/OG0kOQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFONr
upWKeCduahC5r+nZn2XOJTNVMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82NEYxRkZGQUM2MjkxMUVGQjc5MkNCQTg3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtm8MA0GCSqGSIb3DQEB
CwUAA4IBAQBBVQlsR47CrTGdCVCoeXuyvMZqIaNMr0BUlPsiNEdqcwPnfQOqr9fw
W/5tA7zJRKlwrS7INdxCpavA4ViFT3eYkGpCZbDyoVs3ySUORcBXvaSWKWY4tFzB
4LHWXMvh3104gL7THgbJ26qJbLLjjXwdaHUafrxY+PkgGHI7GnFqYiv65OTf0UFC
iCBg01/PxV22vYc4l1krwMTl5MUmDyeiTVcv1q5mtj+V/3XOjrdc+c0BctbiZlNn
NcZlmY3sMLA1YXbx/rvm9XcNWjUqG5vg4+SuqBo1RskN4+ggxuvyZCmpQ69JLRhM
yu9wNJo2/c901NOSfB6IqigftgcLQSP7
-----END CERTIFICATE-----
Generated at Mon Apr 7 12:24:38 2025 by rpki-client